AWS Network Engineer - Basics Quiz
← Back to Quiz Home
This quiz covers the foundational building blocks of AWS Networking: VPCs, Subnets, Routing, and Connectivity.
What is a VPC (Virtual Private Cloud)?
VPC gives you full control over your virtual networking environment, including IP ranges, subnets, and route tables.
Which component allows instances in a public subnet to communicate with the internet?
IGW performs network address translation for instances with public IPv4 addresses.
What is the primary purpose of a NAT Gateway?
NAT Gateways are critical for patching private servers without exposing them to incoming attacks.
Which Route 53 record type simply points one domain name to another domain name (e.g., www.example.com -> example.com)?
CNAMEs map an alias name to a true or canonical domain name.
What is the key difference between AWS Direct Connect and a Site-to-Site VPN?
Direct Connect provides a more reliable and higher bandwidth connection for enterprise workloads.
What allows two VPCs to communicate with each other as if they were on the same network?
Peering facilitates private communication using private IP addresses.
Which Load Balancer type operates at Layer 7 (Application Layer) and supports path-based routing?
ALB creates a smart routing layer for HTTP/HTTPS traffic (e.g., /api -> Target Group A).
What does a Security Group typically control?
Security Groups act as a virtual firewall for your instances.
What is a "Public Subnet"?
If the subnet cannot route to 0.0.0.0/0 via IGW, it is effectively private.
Which service provides a static Anycast IP address to improve global application availability?
Global Accelerator routes traffic over the AWS global network backbone, bypassing public internet congestion.
What is the purpose of an "Elastic IP" (EIP)?
You can mask the failure of an instance or software by rapidly remapping the address to another instance.
How does Route 53 "Alias" record differ from CNAME?
Always prefer Alias records when pointing to ELBs, CloudFront, or S3 buckets.
What is a "Transit Gateway"?
TGW solves the complexity of managing hundreds of point-to-point VPC peering connections.
Which component controls traffic entering and leaving a subnet (Stateless)?
NACLs provide an additional layer of defense but are stateless (requires allow rules for both inbound and return traffic).
What is an "Interface Endpoint" (PrivateLink)?
PrivateLink keeps traffic between your VPC and services like SNS/SQS entirely within the AWS network.
Which Routing Policy allows you to route traffic based on the geographic location of your users?
Geolocation routing lets you restrict content or localize it (e.g., European users -> Frankfurt).
What is "BGP" (Border Gateway Protocol) used for in AWS?
BGP allows your routers to automatically advertise routes to AWS and receive AWS routes.
What happens if you have overlapping CIDR blocks in two VPCs?
IP address planning is crucial because overlapping ranges prevent direct routing.
What is "Enhanced Networking"?
It enables higher bandwidth and performance for HPC workloads.
What is an "Egress-Only Internet Gateway"?
It allows IPv6 based outbound communication to the internet while preventing inbound connections.
Quiz Progress
0 / 0 questions answered
(0%)
0 correct
Quiz Complete!
0%
📚 Study Guides
📬 Weekly DevOps, Cloud & Gen AI quizzes & guides